GuardMesh is still in alpha. The project aims to be stable enough for experimentation, but not yet frozen.
- core decision names:
allow,deny,escalate,kill - file-based pack workflow using
policy.yamlandrequest.json - example-pack verification model using
decision.expected.json
- CLI command names
- exported runtime helpers
PolicyEngineshape- current rule selectors and constraints
These may still evolve when clarity or correctness improves.
- lint heuristics
- composition details beyond basic
extends - any future bundle or adapter interfaces
- exact report field additions for authoring and tooling features
- Prefer additive changes where possible.
- Document behavior changes in
README.mdanddocs/policy-spec.md. - Update example packs and tests in the same change whenever semantics move.
If you are embedding GuardMesh during alpha:
- pin the package version
- rely on documented fields rather than incidental internals
- treat minor alpha releases as potentially behavior-changing